Microsoft Now Plans To Offer Free Security Updates to Election Officials Using Windows 7

Microsoft Now Plans To Offer Free Security Updates to Election Officials Using Windows 7

The company originally planned to phase out security patches for Windows 7 in January. Now, Microsoft will continue issuing free updates for election systems around the world.

Earlier this summer, cybersecurity experts were on edge about the operating systems used by the majority of election jurisdictions across the country. Most officials are using Windows 7 or older operating systems to program their machines and count ballots, and Microsoft said it would no longer be offering security updates after 2019 unless customers paid a fee.

Now, the company has announced it will offer election officials free security support for the Windows 7 system through the 2020 election cycle, CyberScoop reported. Many states had invested in new voting machines with heightened security protections ahead of the presidential election, but several of those machines still run on the older OS.

“We want to make sure that Windows 7 end-of-life doesn’t…become a barrier to having a secure and safe election,” Jan Neutze, the head of Microsoft’s cybersecurity and democracy team, said at a conference hosted by the Cybersecurity and Infrastructure Security Agency. “It’s the right thing to do.”

While The Associated Press reported in July that the “vast majority of 10,000 election jurisdictions nationwide use Windows 7 or an older operating system,” Microsoft wrote in a blog post on Friday that a “relatively small but still significant number of certified voting machines in operation” run on Windows 7.

Tom Burt, the corporate vice president of customer security and trust, wrote that the company was making the “unusual exception” in providing updates because of many factors, including the limited amount of time that officials have to change over to new systems.

“We also know that transitioning to machines running newer operating systems in time for the 2020 election may not be possible for a number of reasons, including the lengthy voting machine certification process – a process we are working with government officials to update and make more agile,” Burt wrote.

The U.S. Election Assistance Commission also said last week that it will not decertify machines running on Windows 7 or older operating systems. Burt said that Microsoft is “working with major manufacturers that have sold voting machines running Windows 7 to ensure any security updates provided to these systems are successful.”

Other countries stand to benefit from Microsoft’s announcement as well. Burt said that the election security updates will be available to all democratic countries holding national elections in 2020.

About the Author

Haley Samsel is an Associate Content Editor for the Infrastructure Solutions Group at 1105 Media.

Featured

  • New Report Reveals Top Trends Transforming Access Controller Technology

    Mercury Security, a provider in access control hardware and open platform solutions, has published its Trends in Access Controllers Report, based on a survey of over 450 security professionals across North America and Europe. The findings highlight the controller’s vital role in a physical access control system (PACS), where the device not only enforces access policies but also connects with readers to verify user credentials—ranging from ID badges to biometrics and mobile identities. With 72% of respondents identifying the controller as a critical or important factor in PACS design, the report underscores how the choice of controller platform has become a strategic decision for today’s security leaders. Read Now

  • Overwhelming Majority of CISOs Anticipate Surge in Cyber Attacks Over the Next Three Years

    An overwhelming 98% of chief information security officers (CISOs) expect a surge in cyber attacks over the next three years as organizations face an increasingly complex and artificial intelligence (AI)-driven digital threat landscape. This is according to new research conducted among 300 CISOs, chief information officers (CIOs), and senior IT professionals by CSC1, the leading provider of enterprise-class domain and domain name system (DNS) security. Read Now

  • ASIS International Introduces New ANSI-Approved Investigations Standard

    • Guard Services
  • Cloud Security Alliance Brings AI-Assisted Auditing to Cloud Computing

    The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications, and best practices to help ensure a secure cloud computing environment, today introduced an innovative addition to its suite of Security, Trust, Assurance and Risk (STAR) Registry assessments with the launch of Valid-AI-ted, an AI-powered, automated validation system. The new tool provides an automated quality check of assurance information of STAR Level 1 self-assessments using state-of-the-art LLM technology. Read Now

  • Report: Nearly 1 in 5 Healthcare Leaders Say Cyberattacks Have Impacted Patient Care

    Omega Systems, a provider of managed IT and security services, today released new research that reveals the growing impact of cybersecurity challenges on leading healthcare organizations and patient safety. According to the 2025 Healthcare IT Landscape Report, 19% of healthcare leaders say a cyberattack has already disrupted patient care, and more than half (52%) believe a fatal cyber-related incident is inevitable within the next five years. Read Now

New Products

  • Camden CV-7600 High Security Card Readers

    Camden CV-7600 High Security Card Readers

    Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure.

  • Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation.

    Connect ONE®

    Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation.

  • EasyGate SPT and SPD

    EasyGate SPT SPD

    Security solutions do not have to be ordinary, let alone unattractive. Having renewed their best-selling speed gates, Cominfo has once again demonstrated their Art of Security philosophy in practice — and confirmed their position as an industry-leading manufacturers of premium speed gates and turnstiles.